proxmox-utils/wireguard/assets/root/Makefile



SERVER_DIR := /etc/wireguard/
SERVER_TPL := templates/wg0.conf
SERVER_CLIENT_TPL := templates/wg0-client.tpl
SERVER_CONF := $(SERVER_DIR)/wg0.conf
SERVER_KEY := $(SERVER_DIR)/server_id
SERVER_PUBLIC_KEY := $(SERVER_DIR)/server_id.pub

CLIENT_TPL := templates/client.conf
CLIENT_DIR := $(SERVER_DIR)/clients/

CLIENT_IPS ?= 10.42.0.0/16
ENDPOINT_PORT ?= 51820
ENDPOINT ?= 1.2.3.4

# XXX need to generate this...
CLIENT_IP ?= 10.42.0.1/32
DNS ?= 10.1.1.1
ALLOWED_IPS ?= 0.0.0.0/0


%_id:
	@ mkdir -p $$(dirname $@)
	wg genkey 2> /dev/null > $@
	chmod 600 $@

%_id.pub: %_id
	cat $< | wg pubkey > $@


$(SERVER_CONF): $(SERVER_TPL) $(SERVER_KEY)
	cat $< \
		| sed \
			-e 's/\$${ENDPOINT_PORT}/$(ENDPOINT_PORT)/g' \
			-e 's/\$${CLIENT_IPS}/$(subst /,\/,$(CLIENT_IPS))/g' \
			-e 's/\$${SERVER_PRIVATE_KEY}/'$$(cat "$(SERVER_KEY)" | sed -e 's/\//\\\//g')'/g' \
		> "$@"

%.client: $(CLIENT_TPL) $(SERVER_CLIENT_TPL) \
		$(CLIENT_DIR)/%_id $(CLIENT_DIR)/%_id.pub \
		$(SERVER_CONF) $(SERVER_PUBLIC_KEY)
	@ mkdir -p $(CLIENT_DIR)
	cat "$<" \
		| sed \
			-e 's/\$${DNS}/$(DNS)/g' \
			-e 's/\$${ENDPOINT}/$(ENDPOINT)/g' \
			-e 's/\$${ENDPOINT_PORT}/$(ENDPOINT_PORT)/g' \
			-e 's/\$${ALLOWED_IPS}/$(subst /,\/,$(ALLOWED_IPS))/g' \
			-e 's/\$${CLIENT_IP}/$(subst /,\/,$(CLIENT_IP))/g' \
			-e 's/\$${CLIENT_PRIVATE_KEY}/'$$(cat "$(CLIENT_DIR)/$*_id" | sed -e 's/\//\\\//g')'/g' \
			-e 's/\$${SERVER_PUBLIC_KEY}/'$$(cat "$(SERVER_PUBLIC_KEY)" | sed -e 's/\//\\\//g')'/g' \
		> "$(CLIENT_DIR)/$*.conf"
	cat "$(SERVER_CLIENT_TPL)" \
		| sed \
			-e 's/\$${CLIENT_IP}/$(subst /,\/,$(CLIENT_IP))/g' \
			-e 's/\$${ENDPOINT}/$(ENDPOINT)/g' \
			-e 's/\$${ENDPOINT_PORT}/$(ENDPOINT_PORT)/g' \
			-e 's/\$${CLIENT_PUBLIC_KEY}/'$$(cat "$(CLIENT_DIR)/$*_id.pub" | sed -e 's/\//\\\//g')'/g' \
			-e 's/\$${SERVER_PUBLIC_KEY}/'$$(cat "$(SERVER_PUBLIC_KEY)" | sed -e 's/\//\\\//g')'/g' \
		>> "$(SERVER_CONF)"


server: $(SERVER_CONF)
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00


dir creation... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 14:05:06 +03:00			`SERVER_DIR := /etc/wireguard/`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00			`SERVER_TPL := templates/wg0.conf`
tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:16:25 +03:00			`SERVER_CLIENT_TPL := templates/wg0-client.tpl`
dir creation... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 14:05:06 +03:00			`SERVER_CONF := $(SERVER_DIR)/wg0.conf`
			`SERVER_KEY := $(SERVER_DIR)/server_id`
			`SERVER_PUBLIC_KEY := $(SERVER_DIR)/server_id.pub`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00
			`CLIENT_TPL := templates/client.conf`
dir creation... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 14:05:06 +03:00			`CLIENT_DIR := $(SERVER_DIR)/clients/`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00
wireguard almost done... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:49:42 +03:00			`CLIENT_IPS ?= 10.42.0.0/16`
			`ENDPOINT_PORT ?= 51820`
			`ENDPOINT ?= 1.2.3.4`

tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:34:24 +03:00			`# XXX need to generate this...`
wireguard almost done... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:49:42 +03:00			`CLIENT_IP ?= 10.42.0.1/32`
			`DNS ?= 10.1.1.1`
			`ALLOWED_IPS ?= 0.0.0.0/0`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00

			`%_id:`
dir creation... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 14:05:06 +03:00			`@ mkdir -p $$(dirname $@)`
tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:16:25 +03:00			`wg genkey 2> /dev/null > $@`
			`chmod 600 $@`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00
			`%_id.pub: %_id`
			`cat $< \| wg pubkey > $@`


			`$(SERVER_CONF): $(SERVER_TPL) $(SERVER_KEY)`
			`cat $< \`
			`\| sed \`
tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:16:25 +03:00			`-e 's/\$${ENDPOINT_PORT}/$(ENDPOINT_PORT)/g' \`
tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 14:31:04 +03:00			`-e 's/\$${CLIENT_IPS}/$(subst /,\/,$(CLIENT_IPS))/g' \`
tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:34:24 +03:00			`-e 's/\$${SERVER_PRIVATE_KEY}/'$$(cat "$(SERVER_KEY)" \| sed -e 's/\//\\\//g')'/g' \`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00			`> "$@"`

tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:16:25 +03:00			`%.client: $(CLIENT_TPL) $(SERVER_CLIENT_TPL) \`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00			`$(CLIENT_DIR)/%_id $(CLIENT_DIR)/%_id.pub \`
			`$(SERVER_CONF) $(SERVER_PUBLIC_KEY)`
tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:16:25 +03:00			`@ mkdir -p $(CLIENT_DIR)`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00			`cat "$<" \`
			`\| sed \`
tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 14:31:04 +03:00			`-e 's/\$${DNS}/$(DNS)/g' \`
			`-e 's/\$${ENDPOINT}/$(ENDPOINT)/g' \`
			`-e 's/\$${ENDPOINT_PORT}/$(ENDPOINT_PORT)/g' \`
			`-e 's/\$${ALLOWED_IPS}/$(subst /,\/,$(ALLOWED_IPS))/g' \`
			`-e 's/\$${CLIENT_IP}/$(subst /,\/,$(CLIENT_IP))/g' \`
tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:34:24 +03:00			`-e 's/\$${CLIENT_PRIVATE_KEY}/'$$(cat "$(CLIENT_DIR)/$*_id" \| sed -e 's/\//\\\//g')'/g' \`
			`-e 's/\$${SERVER_PUBLIC_KEY}/'$$(cat "$(SERVER_PUBLIC_KEY)" \| sed -e 's/\//\\\//g')'/g' \`
tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:16:25 +03:00			`> "$(CLIENT_DIR)/$*.conf"`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00			`cat "$(SERVER_CLIENT_TPL)" \`
			`\| sed \`
tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 14:31:04 +03:00			`-e 's/\$${CLIENT_IP}/$(subst /,\/,$(CLIENT_IP))/g' \`
			`-e 's/\$${ENDPOINT}/$(ENDPOINT)/g' \`
			`-e 's/\$${ENDPOINT_PORT}/$(ENDPOINT_PORT)/g' \`
tweaks... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 15:34:24 +03:00			`-e 's/\$${CLIENT_PUBLIC_KEY}/'$$(cat "$(CLIENT_DIR)/$*_id.pub" \| sed -e 's/\//\\\//g')'/g' \`
fix... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 17:36:57 +03:00			`-e 's/\$${SERVER_PUBLIC_KEY}/'$$(cat "$(SERVER_PUBLIC_KEY)" \| sed -e 's/\//\\\//g')'/g' \`
added wireguard (untested)... Signed-off-by: Alex A. Naanou <alex.nanou@gmail.com> 2024-01-09 03:21:36 +03:00			`>> "$(SERVER_CONF)"`



			`server: $(SERVER_CONF)`